OSV-2025-528

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/pidgin/OSV-2025-528.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2025-528
Published
2025-07-07T00:10:42.902465Z
Modified
2025-07-07T00:10:42.902766Z
Summary
Heap-buffer-overflow in xmlnode_parser_structural_error_libxml
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=429429092

Crash type: Heap-buffer-overflow WRITE 4
Crash state:
xmlnode_parser_structural_error_libxml
__xmlRaiseError
xmlParseAttValueInternal
References

Affected packages

OSS-Fuzz / pidgin

Package

Name
pidgin
Purl
pkg:generic/pidgin

Affected ranges

Type
GIT
Repo
https://github.com/google/fuzzing
Events
Introduced
5997a4fc09163c1baa186f5a9d00c4c8668a72b1
Fixed
734e55f3cfed1adbb51bf6cb5c65b4c1197b7089

Ecosystem specific 

{
    "severity": "HIGH"
}

Database specific

fixed_range 
"748de3eed506a515840fcea85fb1c0c22c170c2a:734e55f3cfed1adbb51bf6cb5c65b4c1197b7089"
source 
"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/pidgin/OSV-2025-528.yaml"
introduced_range 
"unknown:5997a4fc09163c1baa186f5a9d00c4c8668a72b1"